add Element for providers for windowsAuthentication [IIS Settings Schema]
Note
For more information about the add element, see the following topic on the Microsoft IIS.net Web site: Adding Windows Authentication Providers <add>.
Adds a security provider for Windows authentication.
Syntax
Attributes and Elements
The following sections describe attributes, child elements, and parent elements for this section.
Attributes
Attribute |
Description |
---|---|
name |
Optional String attribute. Specifies the name of the security provider. By default, there are two providers: Negotiate and NTLM. |
Child Elements
None.
Parent Elements
Element |
Description |
---|---|
configuration |
Specifies the root element in every configuration file that is used by IIS 7. |
system.webServer |
Specifies the top-level section group (in ApplicationHost.config) in which this element is defined. |
security |
Specifies the section group that contains security-related sections. |
authentication |
Specifies the section group that contains authentication sections. |
windowsAuthentication |
Specifies Windows authentication configuration. |
providers |
Specifies security support providers used for Windows authentication. |
Remarks
For more information about the add element, see the following topic on the Microsoft IIS.net Web site: Adding Windows Authentication Providers <add>.
Windows authentication includes the Kerberos v5 and NTLM security providers. Negotiate is a wrapper for Kerberos v5 and NTLM. When you use Negotiate, the client Web browser selects the most appropriate security support provider for authentication.
If you want to force NTLM, remove the Negotiate provider from the list of providers.
Element Information
Configuration locations |
Machine.config ApplicationHost.config Root application Web.config Application Web.config Directory Web.config |
Requirements |
Microsoft Internet Information Services (IIS) version 7.0 |